当前位置: X-MOL 学术IEEE Trans. Inform. Forensics Secur. › 论文详情
Our official English website, www.x-mol.net, welcomes your feedback! (Note: you will need to create a separate account there.)
BitMine: An End-to-End Tool for Detecting Rowhammer Vulnerability
IEEE Transactions on Information Forensics and Security ( IF 6.8 ) Pub Date : 2021-11-13 , DOI: 10.1109/tifs.2021.3124728
Zhi Zhang , Wei He , Yueqiang Cheng , Wenhao Wang , Yansong Gao , Minghua Wang , Kang Li , Surya Nepal , Yang Xiang

Rowhammer is a destructive software-induced DRAM fault, which an attacker can leverage to break system security. Both individual customers and enterprise users (e.g., cloud providers) might refrain from using a computing system if it is vulnerable to rowhammer vulnerability. In this paper, we provide the first end-to-end tool, coined BitMine, that systematically assesses a DRAM chip’s vulnerability to rowhammer bit flips. BitMine is an extension of DRAMDig. As DRAM address mappings are proprietary techniques and critical in inducing rowhammer bit flips, DRAMDig, our prior work, leverages domain knowledge to efficiently and deterministically reverse-engineer DRAM address mappings on Intel machines. By incorporating DRAMDig, BitMine configures three key parameters, i.e., hammer methods , hammer patterns , data patterns , on the effectiveness of finding rowhammer bit flips. BitMine by default implements 13 hammer methods, 4 hammer patterns and 16 data patterns and is extensible to support more. We evaluate DRAMDig and BitMine against multiple machine models that combine different DRAM chips and Intel microarchitectures. Our experiment results show that DRAMDig efficiently uncovers a deterministic DRAM address mapping for each machine model, and every implemented parameter in BitMine has its distinct effectiveness in triggering bit flips for different machine models.

中文翻译:

BitMine:用于检测 Rowhammer 漏洞的端到端工具

Rowhammer 是一种破坏性的软件引起的 DRAM 故障,攻击者可以利用它来破坏系统安全。如果计算系统容易受到 rowhammer 漏洞的影响,个人客户和企业用户(例如,云提供商)都可能避免使用该计算系统。在本文中,我们提供了第一个端到端工具,创造了 BitMine,它系统地评估了 DRAM 芯片对 rowhammer 位翻转的脆弱性。BitMine 是 DRAMDig 的扩展。由于 DRAM 地址映射是专有技术,并且在诱导 rowhammer 位翻转方面至关重要,因此我们之前的工作 DRAMDig 利用领域知识在英特尔机器上高效且确定地逆向工程 DRAM 地址映射。通过结合 DRAMDig,BitMine 配置了三个关键参数,即,锤法, 锤子图案, 数据模式,关于查找 rowhammer 位翻转的有效性。BitMine 默认实现了 13 种锤子方法、4 种锤子模式和 16 种数据模式,并且可以扩展以支持更多。我们针对结合不同 DRAM 芯片和英特尔微架构的多种机器模型评估 DRAMDig 和 BitMine。我们的实验结果表明,DRAMDig 有效地揭示了每个机器模型的确定性 DRAM 地址映射,并且 BitMine 中的每个实现参数在触发不同机器模型的位翻转方面都有其独特的有效性。
更新日期:2021-11-19
down
wechat
bug